SecretScanner
SecretScanner copied to clipboard
deepfence
:unlock: :unlock: Find secrets and passwords in container images and file systems :unlock: :unlock:
Running `make static` creates a static binary in the current folder which can be placed in /usr/bin Sample commands: ``` SecretScanner -local ~/.aws/ -quiet=false -config-path /home/ubuntu/SecretScanner/ SecretScanner -quiet=false -image-name ubuntu/redis:latest...
`$ go get github.com/deepfence/SecretScanner go: downloading github.com/deepfence/SecretScanner v1.1.2 go: github.com/deepfence/SecretScanner upgrade => v1.1.2 go get: github.com/deepfence/[email protected] requires github.com/deepfence/[email protected]: invalid version: unknown revision 000000000000` What is the problem here? May I...
idea :- https://docs.github.com/en/enterprise-cloud@latest/code-security/secret-scanning/managing-alerts-from-secret-scanning | need same feature using our secretscanner | ---> how to :- SARIF support for secret scanning using github action
I read the [documentation](https://community.deepfence.io/docs/secretscanner/configure/cli#configure-scans) and found that I can exclude certain paths by appending them to `exclude_paths`. Trying to evaluate this tool, I found the following false positive: ```json {...
Design and develop docker extension for SecretScanner with following features. - Ability to list all images present locally - Ability to run secret scan on selected image - Result in...
Made some tweaks to handle the way we manipulate channels.
Hello, I build a small Python App with this Dockerfile: ``` FROM docker.io/library/python:3.8 ENV PYTHONDONTWRITEBYTECODE=1 ENV PYTHONUNBUFFERED=1 WORKDIR /app COPY requirements.txt /app/ RUN pip install -r requirements.txt ENV POSTGRES_HOST=database ENV...
The tool should be able to find a Secret in Envs. For Example, for images that are produced from such Dockerfile: ``` FROM docker.io/library/python:3.8 ENV PYTHONDONTWRITEBYTECODE=1 ENV PYTHONUNBUFFERED=1 WORKDIR /app...
``` docker run -i --rm \ -v /var/run/docker.sock:/var/run/docker.sock \ quay.io/deepfenceio/deepfence_secret_scanner_ce:2.4.0 \ -image-name alpine:latest ``` Got error: ``` ERRO[2024-10-08T09:03:52Z] yara.go:59 open : no such file or directory ERRO[2024-10-08T09:03:52Z] runner.go:81 error in...
